| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101 |
- # mautrix-signal - A Matrix-Signal puppeting bridge
- # Copyright (C) 2020 Tulir Asokan
- #
- # This program is free software: you can redistribute it and/or modify
- # it under the terms of the GNU Affero General Public License as published by
- # the Free Software Foundation, either version 3 of the License, or
- # (at your option) any later version.
- #
- # This program is distributed in the hope that it will be useful,
- # but WITHOUT ANY WARRANTY; without even the implied warranty of
- # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
- # GNU Affero General Public License for more details.
- #
- # You should have received a copy of the GNU Affero General Public License
- # along with this program. If not, see <https://www.gnu.org/licenses/>.
- from typing import Any, List, NamedTuple
- import os
- from mautrix.types import UserID
- from mautrix.client import Client
- from mautrix.bridge.config import (BaseBridgeConfig, ConfigUpdateHelper, ForbiddenKey,
- ForbiddenDefault)
- Permissions = NamedTuple("Permissions", user=bool, admin=bool, level=str)
- class Config(BaseBridgeConfig):
- def __getitem__(self, key: str) -> Any:
- try:
- return os.environ[f"MAUTRIX_SIGNAL_{key.replace('.', '_').upper()}"]
- except KeyError:
- return super().__getitem__(key)
- @property
- def forbidden_defaults(self) -> List[ForbiddenDefault]:
- return [
- *super().forbidden_defaults,
- ForbiddenDefault("appservice.database", "postgres://username:password@hostname/db"),
- ForbiddenDefault("bridge.permissions", ForbiddenKey("example.com")),
- ]
- def do_update(self, helper: ConfigUpdateHelper) -> None:
- super().do_update(helper)
- copy, copy_dict, base = helper
- copy("homeserver.asmux")
- copy("appservice.provisioning.enabled")
- copy("appservice.provisioning.prefix")
- copy("appservice.provisioning.shared_secret")
- if base["appservice.provisioning.shared_secret"] == "generate":
- base["appservice.provisioning.shared_secret"] = self._new_token()
- copy("appservice.community_id")
- copy("signal.socket_path")
- copy("metrics.enabled")
- copy("metrics.listen_port")
- copy("bridge.username_template")
- copy("bridge.displayname_template")
- copy("bridge.allow_contact_list_name_updates")
- copy("bridge.displayname_preference")
- copy("bridge.autocreate_group_portal")
- copy("bridge.autocreate_contact_portal")
- copy("bridge.sync_with_custom_puppets")
- copy("bridge.sync_direct_chat_list")
- copy("bridge.login_shared_secret")
- copy("bridge.federate_rooms")
- copy("bridge.encryption.allow")
- copy("bridge.encryption.default")
- copy("bridge.encryption.key_sharing.allow")
- copy("bridge.encryption.key_sharing.require_cross_signing")
- copy("bridge.encryption.key_sharing.require_verification")
- copy("bridge.private_chat_portal_meta")
- copy("bridge.delivery_receipts")
- copy("bridge.delivery_error_reports")
- copy("bridge.resend_bridge_info")
- copy("bridge.command_prefix")
- copy_dict("bridge.permissions")
- def _get_permissions(self, key: str) -> Permissions:
- level = self["bridge.permissions"].get(key, "")
- admin = level == "admin"
- user = level == "user" or admin
- return Permissions(user, admin, level)
- def get_permissions(self, mxid: UserID) -> Permissions:
- permissions = self["bridge.permissions"]
- if mxid in permissions:
- return self._get_permissions(mxid)
- _, homeserver = Client.parse_user_id(mxid)
- if homeserver in permissions:
- return self._get_permissions(homeserver)
- return self._get_permissions("*")
|
